Overview

overview

8

Static

static

3

GF.dll

windows11-21h2-x64

8

run me as admin.bat

windows11-21h2-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    InfinityNikki.zip

  • Size

    308KB

  • Sample

    250101-c4qv8s1pet

  • MD5

    1b2c244217c790630f0279cdbdfabd76

  • SHA1

    0f041152d404add6f823cecca6ee881df1eb188e

  • SHA256

    13e670c886fb6c001da708b00402e515ffb9465f06ae5b58a2b6fd9ae53aeef0

  • SHA512

    b9ad87cffef69ea8e246f7bc6bb66fc0f9b9c08e5cea724064d891382db51c58069b8dc459a2ff0a032cee9686e8722eb7648e37cafc23c1697b740139927509

  • SSDEEP

    6144:PfjzAexF4Feg/NxeuwhKSuxMNq1KwN7h5KB3TArIWt2zkxMZ:Pr0eDOjJCKsNFcOntzkxc

Score
8/10

Malware Config

Targets

    • Target

      GF.DATA

    • Size

      661KB

    • MD5

      eeae6109ee66a0d27b4ec6886136ab87

    • SHA1

      1d081b70f1a8d388adb46d31cfc61940d3dfdfc0

    • SHA256

      bcfcae356a1a5cd4a61c50032446830391f489ae809c59c60719740997c75e25

    • SHA512

      70c9c4b0f842c49ff0fdbfb273b97dc83c2bc4d60a24a4ccd64815a5f3f428cdfec56dbfb0f83debe6fe13a036bbeacddff1800d4e382f3cdce4fe9fad4b7a34

    • SSDEEP

      12288:VPQN/Z2bYpTdW6fCYDHfb5y7ACtKN5OfwM/ZP0lv43olteDAL/:SZ2baI6fCYzbwG5O5/9Soe

    Score
    8/10

    • Blocklisted process makes network request

    behavioral1

    • Target

      run me as admin.bat

    • Size

      111B

    • MD5

      32ebd1b51e027f5eb86c7cd3bf98f661

    • SHA1

      9f94f463b0c60e73cb6d9a221feb86da05bf5582

    • SHA256

      49941008e16ca6b79cc4949da034da2696d7f78d6664b74afcd11902eb76c3c9

    • SHA512

      4540c9d9ea0e58e889d29d50cb22bb4e0d5c401475127c529d9abacf9ea0c3a9aa8b22ca1b13fd6da98f0452b8e7d22111b59bc520b57601e3d6e606c0d48b35

    Score
    8/10

    • Blocklisted process makes network request

    behavioral2

MITRE ATT&CK Matrix

Tasks